Remote Principal of Security Operations

Description:

• Business Wire is seeking a Principal of Security Operations to lead and enhance their security operations function.
• The role involves overseeing security operations, detection, and response initiatives to protect systems, data, and reputation.
• Responsibilities include providing mentorship and guidance to improve security capabilities, managing the Security Information and Event Management (SIEM) platform, and building security automation playbooks.
• The Principal will implement and manage Endpoint Detection and Response (EDR) solutions and establish a robust monitoring and analysis program for real-time security event response.
• The position requires operationalizing the threat intelligence program and conducting thorough investigations into security incidents.
• The role also includes proactive threat hunting, leading incident response efforts, and managing security incidents within AWS environments.
• The Principal will oversee and optimize various security defensive technologies and implement security controls in AWS environments.

Requirements:

• Candidates must have 8+ years of experience in security operations, incident management, and threat hunting, with at least 4 years in an AWS environment.
• A strong technical background in security technologies and tools, including SIEM, EDR, and threat intelligence platforms, is required.
• Demonstrated knowledge of scripting languages such as Python, PowerShell, and Bash is necessary.
• Proven experience in managing security investigations and implementing best practices in AWS environments is essential.
• Candidates should have expertise in leading incident response efforts and handling complex incident response activities.
• Knowledge of preventive security technologies like DLP, CASB, and Crowdstrike XDR is required.
• Strong leadership skills and the ability to collaborate with cross-functional teams are essential.
• Exceptional communication skills to present security findings and articulate technical concepts to non-technical stakeholders are necessary.
• Candidates should possess strong analytical and problem-solving skills, strategic thinking abilities, and familiarity with threat intelligence sources.
• A continuous improvement mindset and the ability to adapt to dynamic security challenges are required.
• Relevant certifications such as CISSP, CISM, GIAC, or AWS security certifications are a plus.

Benefits:

• The position offers the ability to work remotely.
• Excellent health benefits begin on the first day of employment.
• A $100 monthly fitness allotment, tuition reimbursement program, and enhanced mental health resources are included.
• A 401(k) plan with a generous company match and annual profit-sharing contributions based on company performance is provided.
• Paid time off (PTO), Floating Holidays, a Wellness Day Off, and a Birthday Day Off are part of the benefits package.
• The base salary range for this position is $160K to $235K/year, determined by various factors including education, experience, and internal equity.